public IActionResult Login(Registered person)
{
if (person == null)
{
return(View());
}
try {
if (person.NickName.Equals("quest") && person.Password.Equals("password"))
{
return(RedirectToAction("Guest"));
}
}
catch (NullReferenceException nrEx)
{
return(RedirectToAction("Login", new Registered()));
}
Registered repositoryPerson = null;
try
{
repository.Connect();
repositoryPerson = repository.getByNickname(person.NickName);
}
catch (Exception ex)
{
ModelState.AddModelError(nameof(Person.NickName), "Nickname doesn't exists!");
return(View());
}
ValidateLogin(person, repositoryPerson);
if (ModelState.IsValid)
{
HttpContext.Session.SetString(KeyLoggedIn, "" + repositoryPerson.GetPersonType());
return(RedirectToAction("Index"));
}
return(View());
}
public bool Update(int id, Registered person)
{
if (person == null)
{
return(false);
}
else if (connection.State == ConnectionState.Open)
{
DbCommand query = connection.CreateCommand();
query.CommandText = "UPDATE Person set nickName = @nickName, password = @password, firstName = @firstName, lastName = @lastName, accessLevel = @accesLevel where id = @id;";
query.Parameters.Add(MakeDbParameter(query, "nickName", DbType.String, person.NickName));
query.Parameters.Add(MakeDbParameter(query, "password", DbType.String, person.Password));
query.Parameters.Add(MakeDbParameter(query, "firstName", DbType.Int32, person.FirstName));
query.Parameters.Add(MakeDbParameter(query, "lastName", DbType.Int32, person.LastName));
query.Parameters.Add(MakeDbParameter(query, "accessLevel", DbType.Int32, person.GetPersonType()));
query.Parameters.Add(MakeDbParameter(query, "id", DbType.Int32, id));
return(query.ExecuteNonQuery() == 1);
}
return(false);
}
public bool Insert(Registered person)
{
if (person == null)
{
return(false);
}
else if (connection.State == ConnectionState.Open)
{
DbCommand query = connection.CreateCommand();
query.CommandText = "INSERT Person VALUES(null, @nickName, @password, @firstName, @lastName, @accessLevel, null);";
query.Parameters.Add(MakeDbParameter(query, "nickName", DbType.String, person.NickName));
query.Parameters.Add(MakeDbParameter(query, "password", DbType.String, person.Password));
query.Parameters.Add(MakeDbParameter(query, "firstName", DbType.String, person.FirstName));
query.Parameters.Add(MakeDbParameter(query, "lastName", DbType.String, person.LastName));
query.Parameters.Add(MakeDbParameter(query, "accessLevel", DbType.Int32, person.GetPersonType()));
query.ToString();
return(query.ExecuteNonQuery() == 1);
}
return(false);
}
